Fortra® Security & Trust Center

Patch Tuesday
Blog

Patch Tuesday Update March 2024

By Tyler Reguly on Thu, 03/14/2024
This month’s Patch Tuesday drop includes a total of 65 CVEs – 61 issues by Microsoft, 3 issued by Chrome, and 1 issued by Intel. For those worried about the Intel update, which requires you apply both an Intel microcode update and a Microsoft update, it only applies to Atom processors.
Security Advisory

Multiple Vulnerabilities in FileCatalyst Direct

Wed, 03/13/2024
A pair of vulnerabilities exist within FileCatalyst Direct 3.8.8 and earlier. See the vulnerability descriptions below for additional details.
FI-2024-003
Medium
CVE-2024-25154
Security Advisory

Directory Traversal in FileCatalyst Workflow

Wed, 03/13/2024
A directory traversal within the ‘ftpservlet’ of the FileCatalyst Workflow Web Portal allows files to be uploaded outside of the intended ‘uploadtemp’ directory with a specially crafted POST request. In situations where a file is successfully uploaded to web portal’s DocumentRoot, specially crafted JSP files could be used to execute code, including web shells.
FI-2024-002
Critical
CVE-2024-25153
Emerging Threats

JetBrains TeamCity Authentication Bypass

Tue, 03/05/2024
Fortra is investigating an authentication bypass vulnerability in JetBrains TeamCity – CVE-2024-27198. The authentication bypass allows an attacker to create an authentication token, which can then be used to perform remote code execution. The vendor has released an update to mitigate this vulnerability.Who is affected?All versions prior to JetBrains TeamCity 2023.11.4 are vulnerable to CVE-2024...
Emerging Threats

ConnectWise ScreenConnect Vulnerabilities

Wed, 02/28/2024
Fortra is investigating two vulnerabilities in ConnectWise ScreenConnect – CVE-2024-1708 and CVE-2024-1709 – which are being actively exploited in the wild. These vulnerabilities can allow an attacker to execute remote code or directly impact confidential data or critical systems. Customers using any on-premise version of ScreenConnect below 23.9.8 are recommended to update immediately.Who is...
Emerging Threats

FortiOS Out-of-Bounds Write Vulnerability

Fri, 02/09/2024
Fortra is actively researching an out-of-bounds write vulnerability in FortiOS. This vulnerability, CVE-2024-21762, may allow an unauthenticated remote attacker to execute arbitrary code or command via specially crafted HTTP requests. Customers are recommended to upgrade to a fixed version of FortiOS as soon as possible.
Emerging Threats

Jenkins Arbitrary Read Vulnerability

Tue, 01/30/2024
Fortra is researching a vulnerability in Jenkins’ built-in command line interface (CLI). This vulnerability, CVE-2024-23897, could allow an unauthenticated attacker with Overall/Read permission to read arbitrary files on the Jenkins controller file system. Customers are recommended to update to Jenkins 2.442, LTS 2.426.3.
Emerging Threats

Authentication Bypass Vulnerability in GoAnywhere MFT

Thu, 01/25/2024
Fortra is researching an authentication bypass vulnerability in GoAnywhere MFT (CVE-2024-0204). By exploiting this vulnerability, an unauthorized user can create an admin user via the administration portal. Customers are recommended to upgrade to GoAnywhere MFT 7.4.1 or higher. Who is affected?Customers using any version of GoAnywhere MFT before version 7.4.1 are vulnerable to CVE-2024-0204. What...
Emerging Threats

Confluence OGNL Injection Remote Code Execution Vulnerability

Tue, 01/23/2024
Fortra is researching a new template injection vulnerability on out-of-date versions of Confluence Data Center and Confluence Server. By exploiting this vulnerability (CVE-2023-22527), an unauthenticated attacker can achieve remote code execution. Customers are recommended to update to a patched version of Confluence Data Center and Server as soon as possible to resolve this vulnerability.